Cisco Cisco NSS030 Smart Storage External Power Adapter Libro bianco
4
Security Considerations White Paper for Cisco Smart Storage
White Paper
Introduction
The NSS 300 Smart Storage is a very flexible network resource that can be
deployed in various environments:
•
NAS servicing the public Internet.
•
NAS exclusively servicing a closed LAN.
•
NAS providing services to the public Internet from behind a router, firewall
or gateway.
•
NAS providing application service protocols.
This section investigates several tools used to exploit security vulnerabilities in
these various network environments.
Some background is provided on the following network and system tools and how
Some background is provided on the following network and system tools and how
they are used to put your network at risk:
To harden your business network, the following recommendations can be
implemented to minimize exposure to these vulnerabilities:
•
Enable Password Strength Enforcement
•
Disable unused process, applications, guest accounts
•
Deploy FTP over SSL
•
Disable Anonymous FTP
•
Enable Network Access Protection
•
Deploy SNMPv3 instead of SNMPv2
•
Deploy HTTPS for the administration functions
•
Disable HTTP
•
Deploy port forwarding from WAN to access LAN resources
Nessus
Nikto
Metasploit
Framework
Nmap
Xprobe2
Amap
Winfo
Hping2
John the Ripper
THC Hydra